$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: NRJRld1RHemC5rYyKrgl32n96NOxHr+p18kAQv7ulJ8= Subject key identifier: 97:2B:C6:9B:17:AC:D8:1A:D3:A4:94:F1:C7:35:1B:4B:C0:F7:3D:56 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B9A Signing time: Tue 12 May 2026 19:09:33 +0000 Manifest this update: Tue 12 May 2026 19:09:33 +0000 Manifest next update: Tue 19 May 2026 19:09:33 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: JVC1rYvw5Hl1m0IZBFwefYfEMxawbLSLtOonvnoRIb0=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: apuF+CHb5V3hRVn20QwCD8T6GZ5V5YYEYw6cYSsjqgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: May 12 19:09:33 2026 GMT Not After : May 19 19:09:33 2026 GMT Subject: CN=6a037aed-6b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9a:09:c4:00:ac:9b:34:82:b2:60:11:36:86: f8:e6:66:98:a6:b1:2e:19:64:c1:fb:78:e2:d3:84: 23:d8:2a:21:20:3d:22:22:2d:97:88:57:d9:c8:00: 94:89:06:80:50:73:f2:a8:fd:e3:48:86:e3:40:51: 17:dd:ee:b5:8f:73:05:83:04:c9:05:36:d6:cf:42: 19:5c:83:f7:c7:69:b8:1b:da:de:ce:34:46:5f:d7: 47:56:2e:9e:3b:26:43:24:ed:b5:57:f6:42:f5:37: aa:3e:fb:ea:ba:50:6d:4f:a1:b3:6b:6d:73:ed:bb: ec:29:b0:8b:c8:18:ea:e5:6c:95:a6:d6:b9:1f:a2: 56:5b:18:96:32:e4:0a:11:cd:3c:60:91:53:1c:2c: 4c:2b:e6:0f:d6:16:93:6f:d4:ae:de:ba:7c:d7:48: b6:10:72:91:2f:2a:7d:43:ab:74:f9:35:4e:a7:e4: 5d:34:9a:58:87:f2:42:37:e6:6f:df:ec:4f:4d:10: cf:9d:10:d9:71:11:9e:42:51:8e:0f:66:b6:6a:88: 34:5d:2a:c4:87:04:91:9e:c4:8a:36:97:ac:fa:02: 9a:14:1f:ca:db:3b:64:ab:51:6f:58:be:8b:99:c3: d8:91:82:8d:3e:60:1c:49:88:8e:58:0b:c7:b6:98: e7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2B:C6:9B:17:AC:D8:1A:D3:A4:94:F1:C7:35:1B:4B:C0:F7:3D:56 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ed:14:bb:1e:8d:09:b4:81:08:5c:c5:7e:c1:ea:77:fc:14: a0:2d:10:34:e9:b5:17:55:87:17:31:5e:6a:a7:5b:a1:21:fa: 74:bb:26:b8:19:0c:7d:0b:29:2c:6d:53:21:21:44:c8:1a:8e: 84:28:66:e0:27:7d:8e:e1:98:1a:1d:44:f9:64:f9:31:65:89: fa:38:ed:59:5a:90:6a:06:2f:bb:e1:ee:75:dd:66:af:0c:f7: d3:a2:07:62:42:98:a3:cb:b8:1a:e4:bb:39:c5:3c:80:57:1f: 7d:c3:a9:0c:90:1f:b4:3e:05:31:86:90:11:24:11:2a:cc:26: 62:76:ae:4c:cf:2a:5c:43:c2:94:a8:31:92:1e:71:e2:3c:2c: f2:5c:59:cd:53:8e:c5:3a:9f:07:9e:34:c6:4c:3f:09:90:ea: c6:21:81:f9:bf:ac:35:0b:60:38:3b:33:6e:dc:9a:e4:0f:4c: 1b:8f:ee:06:5a:48:f2:5c:c8:45:84:76:2a:b2:12:35:f3:9d: 0b:46:24:4c:a9:a5:c0:60:d7:76:e6:7f:6e:a7:af:46:23:f8: 52:df:86:68:64:a3:2c:a2:55:6f:ae:e3:13:c8:4c:c2:a2:a8: ec:c8:e4:92:3e:f0:57:29:55:72:7d:bb:57:3e:00:ef:3b:9d: f3:a1:1b:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjYwNTEyMTkwOTMzWhcNMjYwNTE5MTkwOTMzWjAYMRYwFAYD VQQDEw02YTAzN2FlZC02YjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJoJxACsmzSCsmARNob45maYprEuGWTB+3ji04Qj2CohID0iIi2XiFfZyACU iQaAUHPyqP3jSIbjQFEX3e61j3MFgwTJBTbWz0IZXIP3x2m4G9rezjRGX9dHVi6e OyZDJO21V/ZC9TeqPvvqulBtT6Gza21z7bvsKbCLyBjq5WyVpta5H6JWWxiWMuQK Ec08YJFTHCxMK+YP1haTb9Su3rp810i2EHKRLyp9Q6t0+TVOp+RdNJpYh/JCN+Zv 3+xPTRDPnRDZcRGeQlGOD2a2aog0XSrEhwSRnsSKNpes+gKaFB/K2ztkq1FvWL6L mcPYkYKNPmAcSYiOWAvHtpjnzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJcrxpsX rNga06SU8cc1G0vA9z1WMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUe0Uux6NCbSBCFzFfsHqd/wUoC0QNOm1F1WHFzFeaqdboSH6dLsmuBkMfQsp LG1TISFEyBqOhChm4Cd9juGYGh1E+WT5MWWJ+jjtWVqQagYvu+Hudd1mrwz306IH YkKYo8u4GuS7OcU8gFcffcOpDJAftD4FMYaQESQRKswmYnauTM8qXEPClKgxkh5x 4jws8lxZzVOOxTqfB540xkw/CZDqxiGB+b+sNQtgODszbtya5A9MG4/uBlpI8lzI RYR2KrISNfOdC0YkTKmlwGDXduZ/bqevRiP4Ut+GaGSjLKJVb67jE8hMwqKo7Mjk kj7wVylVcn27Vz4A7zud86Eb2A== -----END CERTIFICATE-----Generated at Wed May 13 08:48:10 2026 by rpki-client